accesscontrol

package

v0.4.7 Latest Latest Go to latest Published: Apr 9, 2024 License: AGPL-3.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/l3montree-dev/flawfix

Links

Open Source Insights

Documentation ¶

Overview ¶

This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details.

You should have received a copy of the GNU Affero General Public License along with this program. If not, see <http://www.gnu.org/licenses/>.

Index ¶

Constants
func NewCasbinRBACProvider(db *gorm.DB) (casbinRBACProvider, error)
type AccessControl
type Action
type Object
type RBACMiddleware
type RBACProvider

Constants ¶

View Source

const (
	RoleOwner  = "owner"
	RoleAdmin  = "admin"
	RoleMember = "member"
)

Variables ¶

This section is empty.

Functions ¶

func NewCasbinRBACProvider ¶

func NewCasbinRBACProvider(db *gorm.DB) (casbinRBACProvider, error)

the provider can be used to create domain specific RBAC instances

Types ¶

type AccessControl ¶

type AccessControl interface {
	HasAccess(subject string) bool

	InheritRole(roleWhichGetsPermissions, roleWhichProvidesPermissions string) error

	GetAllRoles(user string) []string

	GrantRole(subject string, role string) error
	RevokeRole(subject string, role string) error

	GrantRoleInProject(subject string, role string, project string) error
	RevokeRoleInProject(subject string, role string, project string) error
	InheritProjectRole(roleWhichGetsPermissions, roleWhichProvidesPermissions string, project string) error

	LinkDomainAndProjectRole(domainRoleWhichGetsPermission, projectRoleWhichProvidesPermissions string, project string) error

	AllowRole(role string, object string, action []Action) error
	IsAllowed(subject string, object string, action Action) (bool, error)

	IsAllowedInProject(project, user string, object string, action Action) (bool, error)
	AllowRoleInProject(project string, role string, object string, action []Action) error

	GetAllProjectsForUser(user string) []string
}

type Action ¶

type Action string

const (
	ActionCreate Action = "create"
	ActionRead   Action = "read"
	ActionUpdate Action = "update"
	ActionDelete Action = "delete"
)

type Object ¶

type Object string

const (
	ObjectProject Object = "project"
	ObjectAsset   Object = "asset"
)

type RBACMiddleware ¶

type RBACMiddleware = func(obj Object, act Action) echo.MiddlewareFunc

type RBACProvider ¶

type RBACProvider interface {
	GetDomainRBAC(domain string) AccessControl
	DomainsOfUser(user string) ([]string, error)
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL